Attorney Bmkm: W > S9200!0044USJ/2t4S 

kEMARKS/ARGIJMEN'I'S 

The present Amendment is in response to the Pinal Office Action having a mailing daft.- of 
Claims 1-22 are pending in the present Application. Applicant has amended claim 7. 
Consequently, claims 1-22 remain pending in the present application. 

Applicant has amended claim 7 to correct a minor error, in particular, claim 7 recited a 
security "chip' (which did not have proper antecedent basis) in lieu of a security processor in two 
instances. Consequently, claim 7 has been amended to recite only a security processor. This 
amendment is seen by Applicant as cosmetic, and as such, is not subject to the prosecution 
history estoppel imposed by Festo. For the record, Applicant points out that the Supreme Court 
in. Festo noted thai a cosmetic amendment would not narrow the patent's scope and thus would 
not raise the estoppel bar. Accordingly, Applicant respectfully submits that no new matter is 
entered and no new search is required. 

This application is under Final Rejection. Applicant has presented arguments heretnhelow 
that Applicant believes should render the claims allowable. In the event, however, that the 
Examiner is not persuaded by Applicant's arguments, Applicant respectfully requests that the 
Examiner enter the Amendment to clarify issues upon appeal. 

In the above-identified Office Action, the Examiner rejected claims 5 and 13 under 35 
U.S.C, § 112, second paragraph. In response to Applicant's arguments, the Exanuner stated thai 
''each of the hardware key, a platform key and a user key, as recited in the claim, is also, by nature, 
an encrypting key ." 

Applicant respectfully disagrees with the Examiner's rejection. Claim 5 recites: 

5. The method of claim 4 wherein the four levels further comprise a 
hardware key pair level, a platform key pair level, an encryptiing key pair level, 
and a user key pair level. 
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Claim 13 recites: 

S3. The system of claim 12 wherein the four level structure further 
comprise a hardware key pair level, a platform key pair level, an encrypting key- 
pair level, and a user key pair level. 

Thus, claims 5 and 13 currently recite four different key pair levels including "an encrypting key 

pair level . . /* It is well accepted that a patentee can be his own lexicographer, in the specification. 

an em.rypt?>?# key pair is described as part of a four level hierarchy. Specification, paragraph 19. 

This is in contrast to the term meryptitm key. The term encryption key is used in a context which 

makes it clear that the term encryption key refers more generally to any of the key pairs in the four 

level hierarchy. Specilkation, paragraph 4. This is in contrast to the encrypting key pair, which is 

at a specific level in the key hierarchy. Consequently, when read in light of the specification, it is 

clear that the term encrypting key pair refers to a specific key pair in the neNt-to highest level in 

one four level encryption key hierarchy. Accordingly, Applicant respectfully submits that claims 5 

and 13 are clear and definite. 

In the above-identified Office Action, the Examiner rejected claims 1-2.? under .15 I ! .S.C. § 
302 as being anticipated by U.S. Patent 6,446.209 (Kern), In response to the Applicant's 
arguments, the Examiner stated that "the alleged limitation has not been, recited into the claim thai 
there is a separate and additional embedded security processor, as presented in the argument; 
instead, the submitted claim limitation merely recites "utilization with an embedded security chip of 
the computer system'" . . The Examiner went on to cite Kern. col. 1 1 . lines 8-10 as teaching 
certain tag data indicating that a security for non -binding) state.. 

Applicant respectfully disagrees with the Examiner's rejection. Claim I recites- 

] . A method for control of key pair usage in a computer system, the 
method comprising: 

fa) creating key pair material for utilization with an embedded security 
chip of the computer system, the key pair material including lag data, the tag data 
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indicating v\ nether the ke> pan material ss hound m the embedded soeurit} chip 
without indicating an idenbn ot the embedded seenrit) chip or ihc computer 
system; and 

(b) determining \shethei tilt ke> pair material is bound to the 
embedded seeuritv chip ba^ed on the lag data. 

Similarly, claim 7 recites: 

7. A computer system with control over key pair usage, the computer 
system comprising: 

a main processor for control ling the computer system: and 
a security processor coupled to the main processor tor embedded security 
in the computer system, the security processor for storing tag data with Ley pair 
materia!, the tag data indicating whether the key pair material is bound to the 
embedded security processor without indicating an identity of the embedded 
security processor or the computer system, the security processor also determining 
binding of the key pair material to the security processor based on the tag data. 

Claim 16 recites- 

16, A method for controlling, usage of key pairs in a hierarchical 
structure of key pairs in an embedded security chip, the method comprising: 

storing tag data with key pair data for each level of the hierarchical 
structure, the tag data indicating whether the key pair material is bound to the 
embedded security chip without indicating an identity of the embedded security- 
chip or the computer system; and 

determining whether the key pair data is bound to the embedded security 
chip based on the lag data. 

Thus, independent claims 1 . 7, and 16 all recite methods or systems lor control of key pair 
usage in a computer system. Claim 7 specifically recites the use of a main processor and a "security 
processor coupled, to the main processor;' Because the security processor is coupled with the main 
processor, the security processor must be a component that is separate from, the main processor. 
Claims I and 16 recite the use of a.n "embedded security chip/' Again, it is well accepted that a 
patentee can be his/her own lexicographer. In. the above-identified application, the tern? embedded 
"security chip" is used consistently with the security processor cited by the Examiner. See, for 
example. Specification, paragraph 3-4 and FIG. 1; paragraph 18. Furthermore, this embedded 
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security chip/processor are depicted and shown as separate from the main processor. Consequently, 
the "embedded security chip" and "embedded security processor" are both embedded on the system 
board of the computer system and coupled to a separate, main processor. Specification, page I , 
lines 15-20 and F!G, i . I bus. the embedded security processor and security chip are effectively 
synonymous. Consequently, despite the Examiner's conclusion to the contrary, claims I , 7, and 1 o 
all recite an embedded security chip, or security processor, separate from the main processor in 
conjunction with the recited tag data, using the recited tag data to determine binding, or the use oj* 
key pairs. This is particularly True when the claims are read in light of the specification.. 

Although Kern functions for its intended purpose. Kern tails 10 teach or suggest the 
methods and system recited in claims J , 7. and 16. In particular. Kern fails to teach or suggest 
utdi/mg key pa.r material for use with an embedded security chip., or security processor, in 
conjunction with the recited tag data, using the recited tag data to determine binding, or the use of 
key pah\>. 

Kern describes a storage controller that seleetkelv allows access to a corresponding -Hoi age 
dev ice based on a ke> . Kern, \bstracl, lines 1 -5. The stoiage controller o? Kent allows the storage 
deuce to be directh attached to a network without the t-v of an intermediate sener to perform 
security funeiiors. Kern, Abated, lines 7-1 (i and cok 2, lines Kern speeiikalh describes 

the components of this controller as including an interface 120. a dearth moduL 122. and a 
storage map. Kern. 1 10. 1 A: col. o. lines -17-51: and col. i\ hoc 66-coL 7. hnc 1 . An example of 
the storage map. which includes au identif cation of the storage region, a reference ke\ tot "1". "2". 
f<r"none">a!!dasv.-euris> i^pc. is in I able ! of Kern. Despite rt detailed discussion of the secum} 
controller. Applicant has iound no mention in Kern of the seeurit} module I?."? r siding on the 
systern board along with a separate processor, instead, t ; u- security module o! kern apparently i.-> the 
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onh proct'^soi jor the seeuntv eonirolL-r 1 ruts, appuietuh .if! oi the funciii-n^ the seeurin 
controller, whether refuted to security or not. would he perMrmcd b> the security module, for 
example. Kern oV scj ihes the security controller as performing a \ arte:} ol storage-related function^ 
in addition to security . Kern, eof 5. lines- i 6-23. Hie security module of the secant} controller 
would apparently perform these i unction,'. Thu^, there is apparently no separate, eedicnrcd 
unbedded security, processor chip on a system hoard along with an additional processor. 
Consequently , Kent fails 10 teach or suggest the use of the recited embedded security 
processor/chip. 

Kent also fails to leach or suggest the recited tag data. I be Hxummcr cited Kent, cof 1 1 . 
lines X- 10 as teaching the Ley pair materia! including the recited tag data. Applicant still 
respectfully disagrees with the fxaniiner. f lie died portion of Kern merely describes one type of 
security that may be p r o\ ided. In whole. tbio. portion oi Kern slates- 

hi step 406. the application program 110-112 choose a desired le\ei of 
security for the region to he allocated, in this example ihe «e\ els of^eurits, aho 
eaflefi^ecursn ty pes" or "access levels' m^ude- 

1 ) "read write protect" \s here h-nh Reads and Y\ nies ate prohibited i lete. the 
storage controller 10G pre\ ents reading and wnimg to the associated storage 
icgion.s unless the host presents an appropriate key 
2} "write pioiecf where Writes are prohibited but Reads pu-milicd Ikae, as 
discussed in greater detail below the controller 106 will prevent hosts 
from writing the storage region unless the host prestnis an appropriate key. 
Hie associated stotage region mas be free I) read. 
3} v, mmc" or "no security," where any host can read and write to litis storage 
region without pre-enting a key. \s an example, "none" may be used as a 
defauft \alue if another security type is not chosen. 

Keni,eol. HMhu.'62-col 11. line H. Consequently, thi,- portion ol Kent mcreiy totes ditVeieut 

types of security le\eis to which the Ley may correspond Hen V.ibk 1 of Kern merely mentions 

security keys, storage regions, and the type of ■security I be references in Table 1 oi kern to the 



reference security key merely remote the si. cunt} type and correspond to the three types of security 
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or access levels. Thus, neither the cited portion of Kern nor Table 1 indicate? thai a key pair 
material includes tag data. Moreover, a search of Kern fails to turn up the term "tajf associated 
Wii'i tk ke\ ol Ke^i Kern \.>K to de^ > she the uetttd uu d < ketn nm>i aKe i A to 

determine binding based upon the tag data. Consequently. Kern fails to teach or suggest the recited 
tag data ami determining binding based upon the tag data. 

Kern also tails to describe the recited key pair material. As described in the specification, a 
key pair includes two keys for each level. Specification, page 2. lines 22-23. In contrast. Applicant 
can 11 rid no mention in Kern of using key pairs. Instead, a simple key, or password, is apparently 
used to access the data in the storage that is managed by Kern's storage controller. Kern, col. 6, 
lines 56-65. Consequently. Kern also fails to describe the recited key pair material. Accordingly, 
for at least the above-identified reasons, Applicant respectfully submits thai claims 1, 1.. and 16 arc 
allowable over the cited references. 

Claims 2-6 and 20 depend upon independent claim I . Claims 845 and 21 depend upon 
independent claim 7. Consequently, the arguments herein with respect to claims 1 and 7 apply with 
Mi force to claims 2-6, 845 and 20-21 . Claims 1 7-! c > and 22 depend upon claim 16. 
Consequently, the arguments herein with respect, to claim 1 6 apply with full force to claims 1 7-W 
and 22. Accordingly, Applicant respectfully submits that claims 2-6, 8-15. and 1 7-22 are allowable 
over the cited references. 
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Applicant's attorney believes thai this application is in condition for allowance. Should 
any unresolved issue* remain. Examiner is Invited to call Applicant's attorney at the telephone 
numbe 1 * itidkaicd below, 

Respt ct f u S K ubrn : t u-d. 
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